AIX must provide xlock command in the CDE environment to let users retain their sessions lock until users are reauthenticated.

An XCCDF Rule

Details
Profiles

Description

All systems are vulnerable if terminals are left logged in and unattended. Leaving system terminals unsecure poses a potential security hazard. If the interface is AIXwindows (CDE), use the xlock command to lock the sessions.

ID: SV-215188r958400_rule
Version: AIX7-00-001029
Severity: Medium
References: CCI-000056
Updated: 24 days ago

Remediation Templates

Install "X11.apps.clients" fileset from the AIX DVD Volume 1 using the following command (assuming that the DVD is mounted to/dev/cd0):

# installp -aXYgd /dev/cd0 -e /tmp/install.log X11.apps.clients

AIX must provide xlock command in the CDE environment to let users retain their sessions lock until users are reauthenticated.

Description

Remediation Templates

A Manual Procedure